CVE-2025-54313CISA KEV: Actively Exploited

Prettier eslint-config-prettier Embedded Malicious Code Vulnerability

Published Jan 22, 2026·Updated Jan 22, 2026

Description

Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows.

Public Exploits & PoCs2 found

PoC: scavenger_scanner

Detect CVE-2025-54313 eslint-config-prettier supply chain attack IOCs on Windows

PoC: cve-2025-54313

Checks projects for compromised packages, suspicious files, and import statements.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Start monitoring free